Apply the suggestions for security part

71da38d6 · Kati Paizee · Shuang Zhang · d997dd71 · 71da38d6
Commit 71da38d6 authored Feb 23, 2022 by Kati Paizee Committed by Shuang Zhang Feb 23, 2022
Hide whitespace changes
Inline Side-by-side

Showing with 5 additions and 4 deletions

doc/user/project/integrations/harbor.md doc/user/project/integrations/harbor.md +5 -4

No files found.
--- a/doc/user/project/integrations/harbor.md
+++ b/doc/user/project/integrations/harbor.md
@@ -40,10 +40,11 @@ After the Harbor integration is activated:
 - The global variables `$HARBOR_USER`, `$HARBOR_PASSWORD`, `$HARBOR_URL`, and `$HARBOR_PROJECT` are created for CI/CD use.
 - The project-level integration settings override the group-level integration settings.
-## Best practice for security
+## Secure your requests to the Harbor APIs
-With every API request through Harbor integration, the credentials for your connection to Harbor API uses `username:password` combination, there are some suggestions for safe use:
+For each API request through the Harbor integration, the credentials for your connection to the Harbor API use
+the `username:password` combination. The following are suggestions for safe use: 
- Use TLS on the Harbor APIs you would connect to.
+- Use TLS on the Harbor APIs you connect to.
- Follow principle of least privilege (with respect to access on Harbor) with your credentials.
+- Follow the principle of least privilege (for access on Harbor) with your credentials.
 - Have a rotation policy on your credentials.